
IN THE CLAIMS 




Please caijjeel claims 13 and 16. Please apfend claims 14, 15, 17 and 18 as 
follows: 




14. (once amended) A method for managing access to a service comprising 
the steps of: 

(A) delegating, to a delegatee by a delegator, one or more permissions, 
wherein the one or more permissions comprise authority to access the service and to 
delegate one or more further permissions to one or more subsequent delegatees and 
wherein the one or more permissions are represented using a digital signature based on a 
private key; 

(B) receiving from at least one of said permitted delegatees data representing 
credential information relating to said one or more permissions, wherein said data is 
included in a URL, over a second computer network; and 

(C) providing access to the service to at least one of said permitted delegatees 
over said second computer network. 

15. (once amended) A method for managing access to a service comprising 
the steps of: 

(A) delegating, to a delegatee by a delegator, one or more permissions, 
wherein the one or more permissions comprise authority to access the service and to 
delegate one or more further permissions to one or more subsequent delegatees and 
wherein the one or more permissions are represented using a digital signature; 

(B) receiving from at least one of said permitted delegatees data representing 
credential information relating to said one or more permissions, wherein said data is 
included in a cookie within an http request, over a second computer network; and 
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(C) providing access to the service to at least one of said permitted delegatees 
over said second computer network. 

17. (once amended) A system for managing access to a service comprising: 
a delegation device that delegates to a delegatee from a delegator one or 

more permissions, wherein the one or more permissions comprise authority to delegate 
one or more further permissions to one or more subsequent delegatees and wherein the 
one or more permissions are represented using a digital signature based on a private key; 

one or more first servers that receive from at least one of said permitted 
delegatees data representing credential information relating to said one or more 
permissions in a URL over a second computer network; and that provide access to the 
service to at least one of said permitted delegatees over said second computer network. 

18. (once amended) A system for managing access to a service comprising: 
a delegation device that delegates to a delegatee from a delegator one or 

more permissions, wherein the one or more permissions comprise authority to delegate 
one or more further permissions to one or more subsequent delegatees and wherein the 
one or more permissions are represented using a digital signature; 

one or more first servers that receive from at least one of said permitted 
delegatees data representing credential information relating to said one or more 
permissions in a cookie within an http request over a second computer network; and that 
provide access to the service to at least one of said permitted delegatees over said second 

computer network. 

A marked up version of the claims, showing the amendments thereto, is attached 
hereto. Support for the amendments can be found at least at page 10, paragraphs 51 and 
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52, of the specification. No new matter has been added. The applicants request 



consideration and allowance of the pending claims as amended. 



The Commissioner is hereby authorized to charge any amounts due in connection 



with this submission to Deposit Account No. 50-0310. A duplicate copy of this page is 



enclosed. 



Respectfully submitted, 




IJaniel H. Golub / 
Reg. No. 33,701 
Alison B. Weisberg 
Reg. No. 45,206 

MORGAN, LEWIS & BOCKIUS LLP 
1701 Market Street 
Philadelphia, PA 19103 
215-963-5091 



Date 
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